Cyber Strategy Sr Consultant
Introduction
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.
You'll work with visionaries across multiple industries to improve their cybersecurity, hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in groundbreaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
Your role and responsibilities
- Design, implement and manage cybersecurity governance activities, i.e. metrics KPIs / KRIs, policies, reports, agreement minutes and awareness campaigns.
- Design, implement and manage cybersecurity risk activities, profiling scenarios, analyzing likelihood and impact, measuring inherent and residual risks and defining treatment plans.
- Design, implement and manage business continuity and recovery strategy of information and communication technologies based on ISO22301.
- Design, implement and manage cybersecurity compliance activities, attending internal and external audits on behalf of our clients, as well as assessing and recommending remediation of controls, based on ISO27001, NIST CSF, PCI DSS, SOX, Swift and/or GDPR.
Required technical and professional expertise
Hands-on experience in business continuity and recovery strategy of information and communication technologies based on ISO22301 or cybersecurity risk & compliance based on ISO27001, NIST CSF, PCI DSS, SOX, Swift and/or GDPR.
Education: Engineer or Bachelor’s degree in Information Technology & Security, Computer Sciences, Business Administration with a cybersecurity component or a related field.
Certification in ISO 22301 Business Continuity and Recovery Management or 27001 Implementer / Lead Auditor / Internal Auditor or equivalent.
Technical Skills:
- Advanced understanding of GRC principles, cybersecurity frameworks and regulatory compliance requirements (e.g. ISO27001, NIST CSF, PCI DSS, SOX, Swift and/or GDPR).
- Strong knowledge of governance, risk management frameworks (e.g. COSO ERM, ISO31000, FAIR) and regulatory compliance requirements.
Preferred technical and professional experience
Hiring manager and recruiter should collaborate to create the relevant verbiage.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
mejor más rápidamente
